Home / Spyware Encyclopedia / IM.Pok << Back

Recommendation to Automatically remove IM.Pok


Our products can remove IM.Pok and thousands of other Virus and Spyware automatically and instantly.

IM.Pok Details


  • Category IM
  • Discovered 3/28/2011 3:08:31 PM
  • Modified 8/11/2023 3:36:01 PM
  • Threat Level Critical
  • Category Description
    A threat that is capable to cause Denial-Of-Service attacks against other instant messenger client systems.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
thnall1t.exe 65536betterinternet, inc.1.0.0.8f9531200c381331a6fe0a59dbcfeb55e 
wtlbass32.dll 29184 1, 0, 0, 1f61f284644bddabd60d5387a80f77dce 
alerter.exe 133232  ffc98e95989c7a3a9547c3d82fc5e8b8 
winlogon32.dll 4096  eeeb593526585fb618ddee7065310507 
mcicdb.dll 24064  ee3ea1500f716c225e6bf1e76b092039 
Trojan-Dropper.Win32.Small.qo.exe 10752  8787c19cd10e8d26574927703f13bd01 
winlogon32.exe 9728  85fa47045d59e2700554dad290a2e91d 
alerter.exe 2122240  7c7d39696420a437ce32379770777e57 
mtwirl.dll 16384  7c73f0634929a9656c73f6ba1ba17d14 
CSRSSW.EXE 29696  6c8d950cf6ae8df5c0087d59b852afb0 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"winlogon"\"%WIN.SYS32%\winlogon32.exe"
..\Software\Microsoft\Windows\CurrentVersion\URL\Prefixes\"www."\"http://"
..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"desktop"\"%WIN.SYS32%\desktop.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"nsdriver"\"%WIN.SYS32%\nssys32.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"desktop"\"%WIN.SYS32%\desktop.exe"
..\Software\Classes\Clsid\{FF986C12-B5C9-439A-839B-D8591CBC24D6}\(Default)
..\Software\Classes\Clsid\{FF593D78-92C8-484E-BCDA-51B5FBB52E98}\(Default)
..\Software\Classes\Clsid\{E3D2751B-7B67-4C6A-8A46-614714042CDE}\(Default)
..\Software\Classes\Clsid\{DACF72F8-AD3D-4556-853A-90B69C531628}\(Default)
..\Software\Classes\Clsid\{D8825110-0A81-43B5-BC1A-A6FE5270F364}\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware


Useful Links

Copyright © 2022 Max Secure Software. All rights reserved.